CVE-2022-2743 - How a Simple Integer Overflow in Chrome OS’s Window Manager Opened the Door to Dangerous Memory Attacks
If you ever wondered how minor bugs in widely used software can become major vulnerabilities, CVE-2022-2743 is a perfect example. This post will break down
CVE-2022-0337 - How a Faulty File System API in Chrome Leaked Sensitive User Information on Windows
---
Summary:
*CVE-2022-0337 exposed a serious security hole in Google Chrome’s File System API on Windows, allowing malicious websites to peek into sensitive files
CVE-2022-0801 - Breaking Down the Chrome HTML Parser Bug That Let Hackers Bypass XSS Protection
Chrome is one of the most trusted and widely used web browsers, but even Google’s top engineers can make mistakes. One such slip, tracked
CVE-2022-34470 Session history navigations may have led to a use-after-free and potentially exploitable crash
It is potentially exploitable, and users who encounter this issue should update as soon as possible. WebExtensions are a new type of add-on that allows
CVE-2022-26486 An unexpected message in the WebGPU IPC framework could lead to a use-after-free and exploitable sandbox escape. We have had reports of attacks in the wild abusing this flaw.
The issue is triggered when WebGPU is enabled in a site and a malformed message is received by the browser. By sending a malformed message,
Episode
00:00:00
00:00:00